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IK THE CLAIMS 
Pending claims follow: 

1 . (Currently Amended) In an environment that includes a 
plurality of users , wherein each user possesses secrets that are shared by 
respective sets of said plurality of users, a secret updating method, 
comprising: 

(a) updating at least one compromised secret known by at least 
one evicted user using at least one non-compromised secret that is not known 
by said at least one evicted user; 

wherein said updating does not use new secret in formation. 

2. (Original) The method of claim 1, wherein said updating 
comprises updating a plurality of compromised secrets. 

3 . (Original) The method of claim 1 , wherein said updating 
comprises updating all compromised secrets. 

4. (Original) The method of claim l s wherein said updating 
comprises updating at least one compromised secret known by due evicted 
user. 

5 . (Original) The method of claim 4, wherein said updating 
occurs upon an eviction event 

6 . (Original) The method of claim 1 , wherein said updating 
comprises updating at least one compromised secret known by a plurality of 
evicted users. 

7. (Original) The method of claim 6, wherein said updating 
occurs on a periodic basis. 
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8 . (Original) The method of claim 1 , wherein said updating 
comprises updating a compromised secret using one non-compromised 
Secret. 

9. (Original) the method of claim 1, wherein said updating 
comprises updating a compromised secret known by a set of users using a 
non-compromised secret of a subgroup of said set of users. 

10. (Cancelled) 

1 1 . (Original) The method of claim 1, wherein said compromised 
secret is shared by said plurality of users. 

12. (Original) Hie method of claim 1 , wherein said secrets 
enables secure communication. 

1 3 . (Currently Amended) In an environment that includes a 
plurality of users , wherein a first user possesses a set of keys, said set of 
keys including a first key that enables secure communication among a set of 
users, said set of users including at least said first user and a second user, a 
keying method, comprising: 

(a) upon eviction of at least said second user, determining an 
updated first key using information that includes said first key and a second 
key> wherein said second key enables secure commnnication among a 
subgroup of said set of users, wherein said subgroup does not include users 
subject to said eviction; 

wherein said determining uses a function having the following 
properties: (1) knowledge of said updated first key does not give knowledge 
of said first key or said second key, (2) knowledge of said first kev does not 
give any knowledge of said updated first key, and (3) knowledge of said first 
kev and said undated first kev does not give any knowledge of said second 
key . 
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14. (Original) The method of claim 13, wherein only said second 
user is evicted. 

15. (Original) The method of claim 13, wherein said second user 
and one or more other usefs in said set of users ate evicted. 

16. (Cancelled) 

17. (Currently Amended) the method of claim [16113a wherein 
said detennining uses a one-way function. 

1 8. (Original) The method of claim 1 7, wherein said updated first 
key is equal to F(frrst key, second key), wherein F() is a one-way function. 

1 9. (Original) The method of claim 1 3, wherein said deterring 
uses only said first bey and said second key. 

20. (Original) The method of claim 13, wherein said subgroup 
includes only said first user. 

21 . (Original) The method of claim 1 3 3 wherein said subgroup 
includes a plurality of users. 

22. -27. (Cancelled) 

28, (Currently Amended) A keying method in an environment 
having a plurality of users , each user being capable of storing a set of keys 
that enable secure communication among sets of said plurality of users, 
comprising: 

(a) distributing first information that enables users to update, 
after eviction of one or more users, a set of compromised keys that are 
known to said one or more users without receiving new key information; 

wherein said update does not include new secret information . 
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29. (Original) The method of claim 28, wherein said first 
iirfoimation includes information that enables identification of a one-way 
function, 

30. (Original) The method of claim 28, wherein said first 
information includes information that enables identification of said evicted 
one or more users. 

3 1. -37. (Cancelled) 

38. (Currently Amended) A secret sharing system, comprising: 

a key server that distributes secret information to a plurality of users, 
wherein each user is sent secrets that are shared by respective sets of said 
plurality of users, said key server being operative to update at least one 
compromised secret known by at least one evicted user using at least one 
non-compromised secret that is not known by said at least one evicted user; 

wherein said update does not include new secret information , 

39. (Currendy Amended) A computer program product, 
comprising: 

computer-readable program code for causing a computer, in an 
environment that includes a plurality of Users, wherein each user possesses 
secrets that are shared by respective sets of said plurality of users, to update 
at least one compromised secret known by at least one evicted user using at 
least one non-compromised secret that is not known by said at least one 
evicted user, and 

a computer-usable medium configured to store the computer-readable 
program codes; 

wherein said update does not include new secret information. 
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40. (New) The method of claim 1, wherein said non-compromised secret 
utilized for said updating is known by all users in said plurality of users and is not 
known by said at least one evicted user. 

4 1 . (New) The method of claim 40, wherein a single non-compromised 
secret is utilized to update a plurality of compromised secrets by using a one-way 
function with inputs of said single non-compromised seciet and said non- 
compromised secret 



PAM 9/14 * RCVD AT IQOQOOB 2:23:38 PM [Eastern Standard Time] 4 SVR:USPT(«FXRF-6<37 * DH1S:27K300 * CSID:4089714660 4 DURATION (mm-ss):03-1 8 



